173.16.0.0 (Intranet/LAN) === (DMZ/10.10.10.1) === 173.16.0.0 (Extranet/WAN)
I have an intranet (173.16.0.0) on the LAN interface and extranet (also 173.16.0.0) on the WAN interface of a pfSense virtual appliance.
Only the extranet has access to the internet. I want to configure a third interface to host a DMZ that can access both the intranet and extranet. This DMZ will contain a WSUS server and linux repository mirror to fetch packages from the extranet for deploying to hosts on the intranet, without exposing the hosts to the internet.
The problem is that both the intranet and extranet are using the same subnet (173.16.0.0), so there is a problem of routing from the DMZ to the interface I want.
Static routes don't resolve this confusion, and cannot change the subnets of either network.
Any guidance is greatly appreciated.
